Wednesday, as As US President Joe Biden and Russian President Vladimir Putin prepare for a meeting in Geneva, Ukrainian law enforcement has announced the arrest of six suspects involved in the infamous clip. ransomware Team. Ukrainian authorities, in cooperation with South Korean and U.S. investigators, searched 21 homes in and around Kiev, seized computers, smartphones and servers, and recovered an estimated অর্থ 184,000 in ransom money.
The Klonsk arrests have been organized as a very rare success story as the ransomware crisis continues. The group has held several high-profile victims since 2012, including Stanford University Medical School, the University of California and South Korea’s e-commerce giant E-Land. And hackers Seems to have collaborated with or related to it Other cyber criminal organizations such as financial crime groups minal FIN11 And dubbed the malware distribution company TA505. The collaborative law enforcement process that led to the removal, however, also emphasized why the threat of widespread ransom surprise remained a distant dream. Ukraine was willing to help this time, but very little will change unless Russia does the same.
Most ransom actors have been working outside of Russia in recent months Ryuk, Which went to a huge hospital-hacking spree in the United States last year, The dark sideWhich Colon has taken the colonial pipeline down Last month and Revel, which hit recently Global meat supplier JBS And Apple supplier Quanta Computer. The judiciary has indicted the Russian fugitives, but is struggling to catch them. And Putin has openly stated over the years – including a 2016 senior interview with NBC – that he has no interest in prosecuting cybercriminals unless they break Russian law.
Craig Williams, director of outreach at Cisco Talos, said, “In any country where you have law enforcement, if you make sure there are enough people who want to work illegally, there will be enough people.” Where we have a safe haven to effectively run cyber criminals. So what we end up with is that the pattern of aggression that is being allowed to run online against private businesses and civilians is not really over. “
Russia’s blindness to cybercrime has been a problem for years, but the Kremlin’s unscrupulous state-sponsored hacking has generally drawn more attention to the conduct of widespread espionage, ranging from election mediators. Although over the past 18 months the intensity and frequency of ransom attacks around the world have evolved from a consistent problem to an emergency crisis. Attacks on critical infrastructure and supply chains paint a grim picture of how far ransomware attackers can go in making money.
Finding the culprits is often not a big obstacle to catching them. There is the US Multiple Russian-based hackers have been charged, And even managed to seize millions of dollars paid in ransom colonial pipelines. But acting on that information usually requires international cooperation. Russia has no extradition treaty with the United States, and is probably out of the way of not helping. In fact, the judiciary has not bothered to seek help from Russian law enforcement in the search for the colonial pipeline hackers, Assistant Attorney General for National Security John Demers said in a conversation recorded on June 3 and June. Released on Wednesday.